Route Origin Authorization
$ rpki-client -vvf rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/E0A2D2B040C811EE90859140C4F9AE02.roa
File: E0A2D2B040C811EE90859140C4F9AE02.roa (raw, json)
Hash identifier: skRP+9UcVz6p99ItfpkcWdsCVMpTNN+fUT0lptapL6Y=
Subject key identifier: 1E:10:08:E9:45:D9:89:D9:00:9D:2C:AC:D7:57:AE:FE:00:0A:D9:21
Certificate issuer: /CN=A9129797/serialNumber=70BD1A5D9512BF6DE0BA69253DBBF01103E53A43
Certificate serial: 10E5
Authority key identifier: 70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43
Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer
Subject info access: rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/E0A2D2B040C811EE90859140C4F9AE02.roa
Signing time: Fri 28 Feb 2025 18:26:58 +0000
ROA not before: Fri 28 Feb 2025 18:26:58 +0000
ROA not after: Fri 01 May 2026 00:00:00 +0000
asID: 135628
IP address blocks: 103.132.250.0/24 maxlen: 24
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 4325 (0x10e5)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=A9129797
Validity
Not Before: Feb 28 18:26:58 2025 GMT
Not After : May 1 00:00:00 2026 GMT
Subject: CN=67c1fff1-9f3d
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:a1:d8:61:90:76:3a:85:5e:ec:e9:6a:9c:f5:6d:
7a:16:40:97:f1:ea:10:e3:0f:64:6f:7b:e1:d1:c7:
54:6a:63:01:d8:9f:5c:d4:08:f8:b5:d6:22:ae:8c:
01:55:cc:ca:c1:a7:21:92:b8:f4:b3:2c:05:0e:6f:
ce:43:36:ac:a2:6e:2f:3d:65:1d:ab:e5:20:d3:96:
df:3a:a8:39:ec:c9:97:04:7c:0c:c8:4b:4a:4d:f9:
15:f5:72:7d:4a:7e:a4:0e:1b:b5:6e:09:7b:9a:31:
62:be:ed:f3:e6:30:eb:6e:11:be:59:95:26:f8:6a:
17:d9:ba:1b:84:2b:c0:5a:c1:c3:bf:57:43:9e:d0:
80:be:fd:df:55:47:1f:d3:89:6c:a9:c7:e7:65:60:
03:8e:8d:4e:86:0f:dd:f7:60:c4:f3:0e:67:d0:2c:
ec:a8:a6:1c:36:0d:95:ca:91:2a:2f:94:6d:1f:24:
f1:05:ec:5e:f8:bd:73:9f:73:8f:27:1c:94:70:c4:
2a:ea:6f:d0:bc:0c:18:d0:0f:eb:8f:35:f4:73:fb:
e4:49:04:06:91:8b:39:82:49:ee:0d:40:1f:08:44:
7b:84:3b:e4:a8:5d:a2:31:b7:2a:4c:ba:e2:4a:67:
1f:16:ea:14:a1:15:3a:cb:7f:8c:0a:34:93:97:06:
52:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1E:10:08:E9:45:D9:89:D9:00:9D:2C:AC:D7:57:AE:FE:00:0A:D9:21
X509v3 Authority Key Identifier:
keyid:70:BD:1A:5D:95:12:BF:6D:E0:BA:69:25:3D:BB:F0:11:03:E5:3A:43
X509v3 Key Usage: critical
Digital Signature
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/cL0aXZUSv23gumklPbvwEQPlOkM.crl
Authority Information Access:
CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/cL0aXZUSv23gumklPbvwEQPlOkM.cer
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
CPS: https://www.apnic.net/RPKI/CPS.pdf
Subject Information Access:
Signed Object - URI:rsync://rpki.apnic.net/member_repository/A9129797/09F2D9941A2211E9BC06D30AC4F9AE02/E0A2D2B040C811EE90859140C4F9AE02.roa
RPKI Notify - URI:https://rrdp.apnic.net/notification.xml
sbgp-ipAddrBlock: critical
IPv4:
103.132.250.0/24
Signature Algorithm: sha256WithRSAEncryption
04:f7:78:3a:47:92:29:27:5c:f1:76:7d:d4:ef:6a:81:73:33:
d7:c4:b1:0f:3e:b5:4e:c6:f3:7f:af:47:5d:e4:8d:be:8e:46:
42:19:08:69:76:dd:f3:b8:49:ee:65:92:3b:4c:06:f3:3d:db:
bb:61:c2:09:a4:13:8d:c4:1a:26:86:29:d0:60:5b:54:35:cd:
a7:15:43:08:d4:d2:1a:5d:cc:bd:de:3c:44:e7:93:47:ec:c3:
b3:b4:24:65:3a:f8:c6:2f:fa:95:f2:3d:07:42:e5:5f:9a:15:
67:27:b7:17:a9:f4:07:56:9b:20:4c:ca:24:11:d4:bb:b6:eb:
96:c4:85:d1:86:9f:05:cd:a7:a8:93:1c:a0:02:21:b7:e6:ad:
d4:21:19:81:81:5f:cf:e9:87:33:db:b4:be:e0:74:b5:02:ea:
03:73:df:e0:32:15:2c:3b:b7:e5:2b:ce:12:8d:89:06:0c:76:
6b:4b:ca:28:44:4c:1c:f7:34:b8:56:80:d2:14:d3:f9:7e:f6:
26:e4:63:94:7a:74:70:bb:67:80:ef:b0:0f:e6:01:a3:0c:33:
2c:ca:44:92:81:01:13:b4:ec:e6:bb:31:17:ba:a1:99:46:31:
d6:75:94:6b:3e:18:98:b1:15:d9:4a:37:0d:59:8c:95:52:d8:
c1:6d:d5:28
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Apr 5 02:13:17 2025 by rpki-client